Advanced
Mailing List Archive

Mailing List Archive

  1. Home >
  2. OpenSSH>
  3. Bugs
[Bug 701] With 'PermitRootPassword without-password' set, root w/pass can still log in with a using 'keyboard-int/pam'
bugzilla-daemon at mindrot
Mar 29, 2004, 6:00 PM
Post #1 of 2 (135 views)
Permalink
http://bugzilla.mindrot.org/show_bug.cgi?id=701

dtucker@zip.com.au changed:

What |Removed |Added
----------------------------------------------------------------------------
CC| |iand@ekit-inc.com



------- Additional Comments From dtucker@zip.com.au 2004-03-30 12:00 -------
*** Bug 713 has been marked as a duplicate of this bug. ***



------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
[Bug 701] With 'PermitRootPassword without-password' set, root w/pass can still log in with a using 'keyboard-int/pam' [ In reply to ]
bugzilla-daemon at mindrot
Mar 29, 2004, 6:08 PM
Post #2 of 2 (133 views)
Permalink
http://bugzilla.mindrot.org/show_bug.cgi?id=701

dtucker@zip.com.au changed:

What |Removed |Added
----------------------------------------------------------------------------
OtherBugsDependingO| |822
nThis| |
Status|NEW |ASSIGNED
Version|3.7.1p1 |-current



------- Additional Comments From dtucker@zip.com.au 2004-03-30 12:08 -------
The current plan is to switch away from the current "without-password" to a
positive list of allowed methods, e.g.

PermitRootLogin pubkey,hostbased,keyboard-interactive

and keep "without-password" as an alias
for something like
"pubkey,hostbased"

One thing that isn't clear is whether or not keyboard-interactive should specify
the specific "devices", eg keyboard-interactive/pam.



------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

©2024 GT.net. A Gossamer Threads company.
5th Floor, 455 Granville St., Vancouver, BC V6C 1T1, Canada | Legal